// For flags

CVE-2008-5422

 

Severity Score

7.5
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Sun Sun Ray Server Software 3.1 through 4.0 does not properly restrict access, which allows remote attackers to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors.

Sun Sun Ray Server Software v3.1 a v4.0 no restringe el acceso apropiadamente, lo que permite a atacantes remotos descubrir la contraseña de administración de Sun Ray y obtener acceso admin a el Data Store y la Administration GUI, mediante vectores no especificados.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2008-12-11 CVE Reserved
  • 2008-12-11 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-264: Permissions, Privileges, and Access Controls
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.0
Search vendor "Sun" for product "Ray Server Software" and version "3.0"
sparc
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
8
Search vendor "Sun" for product "Solaris" and version "8"
sparc
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.0
Search vendor "Sun" for product "Ray Server Software" and version "3.0"
sparc
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
9
Search vendor "Sun" for product "Solaris" and version "9"
sparc
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.0
Search vendor "Sun" for product "Ray Server Software" and version "3.0"
sparc
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
10
Search vendor "Sun" for product "Solaris" and version "10"
sparc
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.1
Search vendor "Sun" for product "Ray Server Software" and version "3.1"
sparc
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
8
Search vendor "Sun" for product "Solaris" and version "8"
sparc
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.1
Search vendor "Sun" for product "Ray Server Software" and version "3.1"
sparc
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
9
Search vendor "Sun" for product "Solaris" and version "9"
sparc
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.1
Search vendor "Sun" for product "Ray Server Software" and version "3.1"
sparc
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
10
Search vendor "Sun" for product "Solaris" and version "10"
sparc
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
4.0
Search vendor "Sun" for product "Ray Server Software" and version "4.0"
sparc
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
8
Search vendor "Sun" for product "Solaris" and version "8"
sparc
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
4.0
Search vendor "Sun" for product "Ray Server Software" and version "4.0"
sparc
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
9
Search vendor "Sun" for product "Solaris" and version "9"
sparc
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
4.0
Search vendor "Sun" for product "Ray Server Software" and version "4.0"
sparc
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
10
Search vendor "Sun" for product "Solaris" and version "10"
sparc
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.1
Search vendor "Sun" for product "Ray Server Software" and version "3.1"
x86
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
10
Search vendor "Sun" for product "Solaris" and version "10"
x86
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
4.0
Search vendor "Sun" for product "Ray Server Software" and version "4.0"
x86
Affected
in Sun
Search vendor "Sun"
Solaris
Search vendor "Sun" for product "Solaris"
10
Search vendor "Sun" for product "Solaris" and version "10"
x86
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.1.1
Search vendor "Sun" for product "Ray Server Software" and version "3.1.1"
linux
Affected
in Novell
Search vendor "Novell"
Suse Linux Enterprise Server
Search vendor "Novell" for product "Suse Linux Enterprise Server"
9
Search vendor "Novell" for product "Suse Linux Enterprise Server" and version "9"
-
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.1.1
Search vendor "Sun" for product "Ray Server Software" and version "3.1.1"
linux
Affected
in Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
4
Search vendor "Redhat" for product "Enterprise Linux" and version "4"
advanced_server
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
4.0
Search vendor "Sun" for product "Ray Server Software" and version "4.0"
linux
Affected
in Novell
Search vendor "Novell"
Suse Linux Enterprise Server
Search vendor "Novell" for product "Suse Linux Enterprise Server"
9
Search vendor "Novell" for product "Suse Linux Enterprise Server" and version "9"
-
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
4.0
Search vendor "Sun" for product "Ray Server Software" and version "4.0"
linux
Affected
in Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
4
Search vendor "Redhat" for product "Enterprise Linux" and version "4"
advanced_server
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.0
Search vendor "Sun" for product "Ray Server Software" and version "3.0"
linux
Affected
in Sun
Search vendor "Sun"
Java Desktop System
Search vendor "Sun" for product "Java Desktop System"
2.0
Search vendor "Sun" for product "Java Desktop System" and version "2.0"
-
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.0
Search vendor "Sun" for product "Ray Server Software" and version "3.0"
linux
Affected
in Novell
Search vendor "Novell"
Suse Linux Enterprise Server
Search vendor "Novell" for product "Suse Linux Enterprise Server"
8
Search vendor "Novell" for product "Suse Linux Enterprise Server" and version "8"
-
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.0
Search vendor "Sun" for product "Ray Server Software" and version "3.0"
linux
Affected
in Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
3
Search vendor "Redhat" for product "Enterprise Linux" and version "3"
advanced_server
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.1
Search vendor "Sun" for product "Ray Server Software" and version "3.1"
linux
Affected
in Sun
Search vendor "Sun"
Java Desktop System
Search vendor "Sun" for product "Java Desktop System"
2.0
Search vendor "Sun" for product "Java Desktop System" and version "2.0"
-
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.1
Search vendor "Sun" for product "Ray Server Software" and version "3.1"
linux
Affected
in Novell
Search vendor "Novell"
Suse Linux Enterprise Server
Search vendor "Novell" for product "Suse Linux Enterprise Server"
8
Search vendor "Novell" for product "Suse Linux Enterprise Server" and version "8"
-
Safe
Sun
Search vendor "Sun"
Ray Server Software
Search vendor "Sun" for product "Ray Server Software"
3.1
Search vendor "Sun" for product "Ray Server Software" and version "3.1"
linux
Affected
in Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
3
Search vendor "Redhat" for product "Enterprise Linux" and version "3"
advanced_server
Safe